ModSecurity is an effective firewall for Apache web servers which is employed to stop attacks against web applications. It keeps track of the HTTP traffic to a specific Internet site in real time and stops any intrusion attempts the instant it identifies them. The firewall relies on a set of rules to do that - for instance, attempting to log in to a script administrator area without success several times triggers one rule, sending a request to execute a specific file that could result in accessing the site triggers a different rule, etc. ModSecurity is one of the best firewalls available and it'll secure even scripts that aren't updated regularly since it can prevent attackers from using known exploits and security holes. Incredibly comprehensive data about every intrusion attempt is recorded and the logs the firewall maintains are a lot more specific than the regular logs generated by the Apache server, so you can later examine them and determine if you need to take extra measures in order to improve the security of your script-driven Internet sites.

ModSecurity in Website Hosting

We offer ModSecurity with all website hosting plans, so your web apps will be shielded from destructive attacks. The firewall is switched on by default for all domains and subdomains, but if you'd like, you shall be able to stop it using the respective section of your Hepsia Control Panel. You'll be able to also switch on a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you will discover within Hepsia are quite detailed and offer information about the nature of any attack, when it took place and from what IP, the firewall rule which was triggered, etcetera. We employ a group of commercial rules that are frequently updated, but sometimes our admins add custom rules as well in order to better protect the websites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

Any web app which you set up within your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall is included with all our hosting packages and is switched on by default for any domain and subdomain that you include or create via your Hepsia hosting CP. You will be able to manage ModSecurity via a dedicated area within Hepsia where not only can you activate or deactivate it entirely, but you may also switch on a passive mode, so the firewall shall not stop anything, but it will still keep an archive of possible attacks. This requires just a click and you'll be able to look at the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was taken care of, etc. The firewall uses 2 groups of rules on our web servers - a commercial one which we get from a third-party web security company and a custom one which our administrators update manually in order to respond to recently discovered risks immediately.

ModSecurity in VPS

Safety is extremely important to us, so we set up ModSecurity on all virtual private servers that are made available with the Hepsia CP as a standard. The firewall can be managed through a dedicated section within Hepsia and is activated automatically when you include a new domain or create a subdomain, so you will not need to do anything by hand. You'll also be able to disable it or switch on the so-called detection mode, so it'll keep a log of potential attacks you can later study, but will not block them. The logs in both passive and active modes offer information about the form of the attack and how it was stopped, what IP it originated from and other valuable info that may help you to tighten the security of your Internet sites by updating them or blocking IPs, for example. On top of the commercial rules we get for ModSecurity from a third-party security enterprise, we also implement our own rules since every now and then we detect specific attacks which are not yet present within the commercial package. That way, we could enhance the protection of your VPS right away as opposed to waiting for a certified update.

ModSecurity in Dedicated Hosting

All of our dedicated servers that are installed with the Hepsia hosting CP come with ModSecurity, so any program that you upload or set up shall be properly secured from the very beginning and you will not need to concern yourself with common attacks or vulnerabilities. An independent section within Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you will find in the logs can help you to secure your websites better - the IP address an attack originated from, what website was attacked as well as how, what ModSecurity rule was triggered, etc. With this info, you could see if a site needs an update, whether you should block IPs from accessing your hosting server, and so forth. On top of the third-party commercial security rules for ModSecurity which we use, our admins add custom ones as well whenever they find a new threat that is not yet a part of the commercial bundle.